CVSS: 7.8EPSS: 0%CPEs: 55EXPL: 0CVE-2021-0612
https://notcve.org/view.php?id=CVE-2021-0612
27 Sep 2021 — In m4u, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05425834. En m4u, se presenta una posible corrupción de memoria debido a un uso de memoria previamente liberada. • https://corp.mediatek.com/product-security-bulletin/September-2021 • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 55EXPL: 0CVE-2021-0611
https://notcve.org/view.php?id=CVE-2021-0611
27 Sep 2021 — In m4u, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05425810. En m4u, se presenta una posible corrupción de memoria debido a un uso de memoria previamente liberada. • https://corp.mediatek.com/product-security-bulletin/September-2021 • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 55EXPL: 0CVE-2021-0610
https://notcve.org/view.php?id=CVE-2021-0610
27 Sep 2021 — In memory management driver, there is a possible memory corruption due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05411456. En memory management driver, se presenta una posible corrupción de memoria debido a un desbordamiento de enteros. • https://corp.mediatek.com/product-security-bulletin/September-2021 • CWE-190: Integer Overflow or Wraparound •
CVSS: 5.5EPSS: 0%CPEs: 55EXPL: 0CVE-2021-0425
https://notcve.org/view.php?id=CVE-2021-0425
27 Sep 2021 — In memory management driver, there is a possible side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05400059. En memory management driver, se presenta una posible divulgación de información de canal lateral. • https://corp.mediatek.com/product-security-bulletin/September-2021 •
CVSS: 5.5EPSS: 0%CPEs: 55EXPL: 0CVE-2021-0424
https://notcve.org/view.php?id=CVE-2021-0424
27 Sep 2021 — In memory management driver, there is a possible system crash due to a missing bounds check. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05393787. En memory management driver, es posible que se produzca un bloqueo del sistema debido a una falta de comprobación de límites. • https://corp.mediatek.com/product-security-bulletin/September-2021 • CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 5.5EPSS: 0%CPEs: 55EXPL: 0CVE-2021-0423
https://notcve.org/view.php?id=CVE-2021-0423
27 Sep 2021 — In memory management driver, there is a possible information disclosure due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05385714. En memory management driver, se presenta una posible divulgación de información debido a datos no inicializados. • https://corp.mediatek.com/product-security-bulletin/September-2021 • CWE-665: Improper Initialization •
CVSS: 5.5EPSS: 0%CPEs: 55EXPL: 0CVE-2021-0422
https://notcve.org/view.php?id=CVE-2021-0422
27 Sep 2021 — In memory management driver, there is a possible system crash due to a missing bounds check. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05381071. En memory management driver, es posible que se produzca un bloqueo del sistema debido a una falta de comprobación de límites. • https://corp.mediatek.com/product-security-bulletin/September-2021 • CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 5.5EPSS: 0%CPEs: 55EXPL: 0CVE-2021-0421
https://notcve.org/view.php?id=CVE-2021-0421
27 Sep 2021 — In memory management driver, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05403499; Issue ID: ALPS05381235. En memory management driver, se presenta una posible divulgación de información debido a una falta de comprobación de límites. • https://corp.mediatek.com/product-security-bulletin/September-2021 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 10.0EPSS: 0%CPEs: 6EXPL: 0CVE-2018-21089
https://notcve.org/view.php?id=CVE-2018-21089
08 Apr 2020 — An issue was discovered on Samsung mobile devices with N(7.x) (MT6755/MT6757 Mediatek models) software. Bootloader has an integer overflow that leads to arbitrary code execution via the download offset control. The Samsung ID is SVE-2017-10732 (January 2018). Se detectó un problema en dispositivos móviles Samsung con versiones de software N(7.x) (modelos Mediatek MT6755/MT6757). El Cargador de Arranque presenta un desbordamiento de enteros que conlleva a una ejecución de código arbitraria por medio del cont... • https://security.samsungmobile.com/securityUpdate.smsb • CWE-190: Integer Overflow or Wraparound •